(Semi-OT) Clickjacking countermeasure
c0nw0nk
nginx-forum at forum.nginx.org
Thu Sep 22 20:34:42 UTC 2016
https://www.owasp.org/index.php/Clickjacking_Defense_Cheat_Sheet
Inside your <head> </head> tags.
<style id="antiClickjack">body{display:none !important;}</style>
<script type="text/javascript">
if (self === top) {
var antiClickjack = document.getElementById("antiClickjack");
antiClickjack.parentNode.removeChild(antiClickjack);
} else {
top.location = self.location;
}
</script>
Posted at Nginx Forum: https://forum.nginx.org/read.php?2,269763,269773#msg-269773
More information about the nginx
mailing list